Hot Downloads

Welcome, Guest
Username: Password: Remember me

TOPIC: How do I remove remote root logins on Linux Fedora core 2

How do I remove remote root logins on Linux Fedora core 2 12 years 3 weeks ago #5965

  • jacko0
  • jacko0's Avatar
  • Offline
  • Frequent Member
  • Posts: 45
  • Karma: 0
How do I remove remote root logins on Fedora core 2, I want to be able to login using SSH but disable the root access except via "su".


Thanks


Jacko
The administrator has disabled public write access.

Re: How do I remove remote root logins on Linux Fedora core 2 12 years 3 weeks ago #5966

  • nske
  • nske's Avatar
  • Offline
  • Expert Member
  • Posts: 613
  • Karma: 0
[code:1]PermitRootLogin no[/code:1]
at your sshd_config.
The administrator has disabled public write access.

Re: How do I remove remote root logins on Linux Fedora core 2 12 years 2 weeks ago #5968

  • sahirh
  • sahirh's Avatar
  • Offline
  • Honored Member
  • Posts: 1700
  • Karma: 0
May I recommend a couple of other measures..

Firstly, authenticate only using public / private keys rather than passphrase authentication.. as you said, login as a regular user and then gain privilege...

Furthermore you might want to consider using 'sudo' rather than su.. 'sudo' will allow you much more granularity, and you will only run as root for the duration of a task.. far less chance of doing something wrong.
Sahir Hidayatullah.
Firewall.cx Staff - Associate Editor & Security Advisor
tftfotw.blogspot.com
The administrator has disabled public write access.

Re: How do I remove remote root logins on Linux Fedora core 2 12 years 2 weeks ago #5975

  • jacko0
  • jacko0's Avatar
  • Offline
  • Frequent Member
  • Posts: 45
  • Karma: 0
I have set etc/sshd_config to:

#PermitRootLogin no

But i can still log in as root! :?

The public / private keys sound a good idea, do u have any info regarding the use and setup of that?

The main problem is that i checked my messages log and 2 different ip's are trying to hack into my pc!

thanks
The administrator has disabled public write access.

Re: How do I remove remote root logins on Linux Fedora core 2 12 years 2 weeks ago #5980

  • nske
  • nske's Avatar
  • Offline
  • Expert Member
  • Posts: 613
  • Karma: 0
"#" means that what follows is a comment and will not be interpreted.

about public key auth method on openssh, check
cfm.gs.washington.edu/security/ssh/client-pkauth/

Don't worry too much about failed login attempts, they are usually caused by mass-range scan & try scripts from scriptkiddies. They will try 2-3 common account combinations and go on.. ;)
The administrator has disabled public write access.

Re: How do I remove remote root logins on Linux Fedora core 2 12 years 2 weeks ago #5981

  • sahirh
  • sahirh's Avatar
  • Offline
  • Honored Member
  • Posts: 1700
  • Karma: 0
Don't worry bout those scans.. as nske said, we all see them.. they try some logins like admin, temp etc etc.. if you switch to public key they wont be able to do anything at all.
Sahir Hidayatullah.
Firewall.cx Staff - Associate Editor & Security Advisor
tftfotw.blogspot.com
The administrator has disabled public write access.
Time to create page: 0.081 seconds

CCENT/CCNA

Cisco Routers

  • SSL WebVPN
  • Securing Routers
  • Policy Based Routing
  • Router on-a-Stick

VPN Security

  • Understand DMVPN
  • GRE/IPSec Configuration
  • Site-to-Site IPSec VPN
  • IPSec Modes

Cisco Help

  • VPN Client Windows 8
  • VPN Client Windows 7
  • CCP Display Problem
  • Cisco Support App.

Windows 2012

  • New Features
  • Licensing
  • Hyper-V / VDI
  • Install Hyper-V

Linux

  • File Permissions
  • Webmin
  • Groups - Users
  • Samba Setup